LAFuzz: Neural Network for Efficient Fuzzing

Xiajing Wang; Changzhen Hu; Rui Ma; Binbin Li; Xuefei Wang

doi:10.1109/ICTAI50040.2020.00098

LAFuzz: Neural Network for Efficient Fuzzing

Xiajing Wang, Changzhen Hu, Rui Ma, Binbin Li, Xuefei Wang

Beijing Institute of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

7 Citations (Scopus)

Abstract

Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.

Original language	English
Title of host publication	Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020
Editors	Miltos Alamaniotis, Shimei Pan
Publisher	IEEE Computer Society
Pages	603-611
Number of pages	9
ISBN (Electronic)	9781728192284
DOIs	https://doi.org/10.1109/ICTAI50040.2020.00098
Publication status	Published - Nov 2020
Event	32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020 - Virtual, Baltimore, United States Duration: 9 Nov 2020 → 11 Nov 2020

Publication series

Name	Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI
Volume	2020-November
ISSN (Print)	1082-3409

Conference

Conference	32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020
Country/Territory	United States
City	Virtual, Baltimore
Period	9/11/20 → 11/11/20

Keywords

AFL
Attention
Fuzzing
LSTM

Access to Document

10.1109/ICTAI50040.2020.00098

Cite this

Wang, X., Hu, C., Ma, R., Li, B., & Wang, X. (2020). LAFuzz: Neural Network for Efficient Fuzzing. In M. Alamaniotis, & S. Pan (Eds.), Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020 (pp. 603-611). Article 9288180 (Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI; Vol. 2020-November). IEEE Computer Society. https://doi.org/10.1109/ICTAI50040.2020.00098

@inproceedings{b204b17f3fa34ed1b14a92f6180c1de6,

title = "LAFuzz: Neural Network for Efficient Fuzzing",

abstract = "Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.",

keywords = "AFL, Attention, Fuzzing, LSTM",

author = "Xiajing Wang and Changzhen Hu and Rui Ma and Binbin Li and Xuefei Wang",

note = "Publisher Copyright: {\textcopyright} 2020 IEEE.; 32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020 ; Conference date: 09-11-2020 Through 11-11-2020",

year = "2020",

month = nov,

doi = "10.1109/ICTAI50040.2020.00098",

language = "English",

series = "Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI",

publisher = "IEEE Computer Society",

pages = "603--611",

editor = "Miltos Alamaniotis and Shimei Pan",

booktitle = "Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020",

address = "United States",

}

Wang, X, Hu, C , Ma, R, Li, B & Wang, X 2020, LAFuzz: Neural Network for Efficient Fuzzing. in M Alamaniotis & S Pan (eds), Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020., 9288180, Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI, vol. 2020-November, IEEE Computer Society, pp. 603-611, 32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020, Virtual, Baltimore, United States, 9/11/20. https://doi.org/10.1109/ICTAI50040.2020.00098

LAFuzz: Neural Network for Efficient Fuzzing. / Wang, Xiajing; Hu, Changzhen ; Ma, Rui et al.
Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020. ed. / Miltos Alamaniotis; Shimei Pan. IEEE Computer Society, 2020. p. 603-611 9288180 (Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI; Vol. 2020-November).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - LAFuzz

T2 - 32nd IEEE International Conference on Tools with Artificial Intelligence, ICTAI 2020

AU - Wang, Xiajing

AU - Hu, Changzhen

AU - Ma, Rui

AU - Li, Binbin

AU - Wang, Xuefei

PY - 2020/11

Y1 - 2020/11

N2 - Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.

AB - Fuzzing is a well-known technique for efficiently finding software vulnerabilities. Unfortunately, due to syntax check, even the state-of-The-Art fuzzers are not very efficient at discovering hard-To-Trigger bugs in applications that expect highly structured inputs. Grammar-based fuzzers, while effective, often require expert knowledge and incur significant computational overhead. In this paper, we present LAFuzz, an automated fuzzer that generates high-quality seed inputs, which utilizes a variety of deep neural network model with different setup to efficiently fuzz programs that expect structured or unstructured inputs. We achieve this by combining mutation-based fuzzing and generation-based fuzzing offline. Our evaluation on 8 popular real-world applications demonstrated that LAFuzz-LSTM and LAFuzz-Attention significantly outperform AFL, a state-of-The-Art fuzzer, on most cases both at discovering more crashes and achieving higher code coverage. In total, LAFuzz-LSTM and LAFuzz-Attention can effectively improve the code coverage over AFL by 7.55% and 7.67%; and both fuzzers can consistently discover 30.19% as well as 82.39% more unique crashes. Furthermore, extensive evaluation also showed that LAFuzz provides a great compatibility and expansibility.

KW - AFL

KW - Attention

KW - Fuzzing

KW - LSTM

UR - http://www.scopus.com/inward/record.url?scp=85098779180&partnerID=8YFLogxK

U2 - 10.1109/ICTAI50040.2020.00098

DO - 10.1109/ICTAI50040.2020.00098

M3 - Conference contribution

AN - SCOPUS:85098779180

T3 - Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI

SP - 603

EP - 611

BT - Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020

A2 - Alamaniotis, Miltos

A2 - Pan, Shimei

PB - IEEE Computer Society

Y2 - 9 November 2020 through 11 November 2020

ER -

Wang X, Hu C , Ma R, Li B, Wang X. LAFuzz: Neural Network for Efficient Fuzzing. In Alamaniotis M, Pan S, editors, Proceedings - IEEE 32nd International Conference on Tools with Artificial Intelligence, ICTAI 2020. IEEE Computer Society. 2020. p. 603-611. 9288180. (Proceedings - International Conference on Tools with Artificial Intelligence, ICTAI). doi: 10.1109/ICTAI50040.2020.00098

LAFuzz: Neural Network for Efficient Fuzzing

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this